CVE-2023-39042

An information leak in Gyouza-newhushimi v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
Configurations

Configuration 1 (hide)

cpe:2.3:a:lycorp:line_mini_app:13.6.1:*:*:*:*:*:*:*

History

05 Sep 2024, 16:35

Type Values Removed Values Added
CWE CWE-200

10 Nov 2023, 04:10

Type Values Removed Values Added
References (MISC) https://github.com/syz913/CVE-reports/blob/main/CVE-2023-39042.md - (MISC) https://github.com/syz913/CVE-reports/blob/main/CVE-2023-39042.md - Exploit, Third Party Advisory
References (MISC) https://liff.line.me/1660693321-VmNyyXqO - (MISC) https://liff.line.me/1660693321-VmNyyXqO - Product
CPE cpe:2.3:a:lycorp:line_mini_app:13.6.1:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
First Time Lycorp
Lycorp line Mini App
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

02 Nov 2023, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-02 22:15

Updated : 2024-09-05 16:35


NVD link : CVE-2023-39042

Mitre link : CVE-2023-39042

CVE.ORG link : CVE-2023-39042


JSON object : View

Products Affected

lycorp

  • line_mini_app
CWE
NVD-CWE-noinfo CWE-200

Exposure of Sensitive Information to an Unauthorized Actor